-
Mariano Cano authoredMariano Cano authored
Code owners
Assign users and groups as approvers for specific file changes. Learn more.
deployment.yaml 8.54 KiB
apiVersion: v1
kind: Namespace
metadata:
labels:
control-plane: controller-manager
name: step-issuer-system
---
apiVersion: apiextensions.k8s.io/v1beta1
kind: CustomResourceDefinition
metadata:
creationTimestamp: null
name: stepissuers.certmanager.step.sm
spec:
group: certmanager.step.sm
names:
kind: StepIssuer
plural: stepissuers
scope: ""
validation:
openAPIV3Schema:
description: StepIssuer is the Schema for the stepissuers API
properties:
apiVersion:
description: 'APIVersion defines the versioned schema of this representation
of an object. Servers should convert recognized schemas to the latest
internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#resources'
type: string
kind:
description: 'Kind is a string value representing the REST resource this
object represents. Servers may infer this from the endpoint the client
submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/api-conventions.md#types-kinds'
type: string
metadata:
type: object
spec:
description: StepIssuerSpec defines the desired state of StepIssuer
properties:
caBundle:
description: CABundle is a base64 encoded TLS certificate used to verify
connections to the step certificates server. If not set the system
root certificates are used to validate the TLS connection.
format: byte
type: string
provisioner:
description: Provisioner contains the step certificates provisioner
configuration.
properties:
kid:
description: KeyID is the kid property of the JWK provisioner.
type: string
name:
description: Names is the name of the JWK provisioner.
type: string
passwordRef:
description: PasswordRef is a reference to a Secret containing the
provisioner password used to decrypt the provisioner private key.
properties:
key:
description: The key of the secret to select from. Must be a
valid secret key.
type: string
name:
description: The name of the secret in the pod's namespace to
select from.
type: string
required:
- name
type: object
required:
- kid
